Lucene search
HistoryNov 01, 2008 - 12:00 a.m.
CVE-2008-4869
ffmpeg
denial of service
vulnerability
memory leak
cve-2008-4869
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.1 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
68.4%
FFmpeg 0.4.9, as used by MPlayer, allows context-dependent attackers to cause a denial of service (memory consumption) via unknown vectors, aka a “Tcp/udp memory leak.”
Affected configurations
Node
ffmpegffmpegRange≤0.4.9pre1
ORffmpegffmpegMatch0.3
ORffmpegffmpegMatch0.3.1
ORffmpegffmpegMatch0.3.2
ORffmpegffmpegMatch0.3.3
ORffmpegffmpegMatch0.3.4
ORffmpegffmpegMatch0.4.0
ORffmpegffmpegMatch0.4.2
ORffmpegffmpegMatch0.4.3
ORffmpegffmpegMatch0.4.4
ORffmpegffmpegMatch0.4.5
ORffmpegffmpegMatch0.4.6
ORffmpegffmpegMatch0.4.7
ORffmpegffmpegMatch0.4.8
mplayermplayer
References
Social References
More
Related
prion
prion
Memory corruption
2008-11-01 00:00:00
ubuntucve
ubuntucve
CVE-2008-4869
2008-11-01 00:00:00
cvelist
cvelist
CVE-2008-4869
2008-10-31 22:00:00
nvd
nvd
CVE-2008-4869
2008-11-01 00:00:01
debiancve
debiancve
CVE-2008-4869
2008-11-01 00:00:01
openvas
openvas
Mandriva Security Advisory MDVSA-2009:297-1 (ffmpeg)
2009-12-10 00:00:00
Mandriva Security Advisory MDVSA-2009:297 (ffmpeg)
2009-11-17 00:00:00
Mandriva Security Advisory MDVSA-2009:297 (ffmpeg)
2009-11-17 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : ffmpeg (MDVSA-2009:297-1)
2009-11-16 00:00:00
GLSA-200903-33 : FFmpeg: Multiple vulnerabilities
2009-03-20 00:00:00
gentoo
gentoo
FFmpeg: Multiple vulnerabilities
2009-03-19 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.1 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
68.4%
Related for CVE-2008-4869